RLSA-2021:4201 --- babelID: oval:org.secpod.oval:def:4501232 | Date: (C)2023-04-03 (M)2023-12-04 |
Class: PATCH | Family: unix |
Babel provides tools to build and work with gettext message catalogs, and a Python interface to the CLDR , providing access to various locale display names, localized number and date formatting, etc. Security Fix: * python-babel: Relative path traversal allows attacker to load arbitrary locale files and execute arbitrary code For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section. Additional Changes: For detailed information on changes in this release, see the Rocky Linux 8.5 Release Notes linked from the References section.